140252 – DOM, KJS and/or KHTML related crash in a web with flash.

Bug 140252 - DOM, KJS and/or KHTML related crash in a web with flash.

Summary: DOM, KJS and/or KHTML related crash in a web with flash.

Status:	RESOLVED FIXED

Alias:	None

Product:	konqueror
Classification:	Applications
Component:	general (show other bugs)
Version:	unspecified
Platform:	unspecified Linux

Importance:	NOR crash
Target Milestone:	---
Assignee:	Konqueror Developers

URL:
Keywords:

Depends on:
Blocks:

Reported:	2007-01-18 15:33 UTC by Raúl
Modified:	2007-01-18 22:37 UTC (History)
CC List:	1 user (show)

See Also:
Latest Commit:
Version Fixed In:

Attachments
Add an attachment

Note You need to log in before you can comment on or make changes to this bug.

Description Raúl 2007-01-18 15:33:30 UTC

Version:           3.5.5 (using KDE 3.5.5, Debian Package 4:3.5.5a.dfsg.1-5 (4.0))
Compiler:          Target: i486-linux-gnu
OS:                Linux (i686) release 2.6.18p4s

I went to this web: http://fastcompany.com/video/general/perceptivepixel.html

I then enable the flash plugin in order to see the embedded content. After some little time for it to load, konqueror crashed (SIGSEGV) with this backtrace:

Using host libthread_db library "/lib/tls/i686/cmov/libthread_db.so.1".
[Thread debugging using libthread_db enabled]
[New Thread -1501067040 (LWP 4658)]
[KCrash handler]
#6  0xa7522f40 in QGDict::look_int (this=0x1d4, key=101725156, d=0x0, op=0)
    at tools/qgdict.cpp:407
#7  0xa5da7be6 in DOM::DocumentImpl::acquireCachedNodeListInfo (this=0x0, 
    factory=0xa5dc9460 <DOM::NodeListImpl::Cache::make()>, base=0x840cf90, 
    type=1) at /usr/share/qt3/include/qintdict.h:69
#8  0xa5da7d75 in NodeListImpl (this=0x86bc4a0, n=0x840cf90, type=1, 
    factory=0x61033e4)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./khtml/xml/dom_nodeimpl.cpp:1690
#9  0xa5da8108 in ChildNodeListImpl (this=0x86bc4a0, n=0x840cf90)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./khtml/xml/dom_nodeimpl.cpp:1787
#10 0xa5da8154 in DOM::NodeImpl::childNodes (this=0x840cf90)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./khtml/xml/dom_nodeimpl.cpp:121
#11 0xa5f5d1ec in DOM::Node::childNodes (this=0x8666b44)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./khtml/dom/dom_node.cpp:214
#12 0xa5edb62c in KJS::DOMNode::getValueProperty (this=0x61033e4, 
    exec=0xafa07344, token=5)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./khtml/ecma/kjs_dom.cpp:239
#13 0xa5edc40c in KJS::DOMNode::tryGet (this=0x8666b18, exec=0xafa07344, 
    propertyName=@0xafa06f48)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./khtml/ecma/kjs_binding.h:221
#14 0xa5edcb09 in KJS::DOMElement::tryGet (this=0x8666b18, exec=0xafa07344, 
    propertyName=@0xafa06f48)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./khtml/ecma/kjs_dom.cpp:1173
#15 0xa5f1a3c3 in KJS::DOMObject::get (this=0x8666b18, exec=0xafa07344, 
    p=@0xafa06f48)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./khtml/ecma/kjs_binding.cpp:50
#16 0xa5c3c990 in KJS::Reference::getValue (this=0xafa06f38, exec=0xafa07344)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/reference.cpp:143
#17 0xa5c3cee9 in KJS::Node::evaluate (this=0x862a078, exec=0xafa07344)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:130
#18 0xa5c136f3 in KJS::AssignExprNode::evaluate (this=0x862a090, 
    exec=0xafa07344)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:1760
#19 0xa5c3d811 in KJS::VarDeclNode::evaluate (this=0x862a0a8, exec=0xafa07344)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:1791
#20 0xa5c3d6ef in KJS::VarDeclListNode::evaluate (this=0x862a0c8, 
    exec=0xafa07344)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:1863
#21 0xa5c54c00 in KJS::VarStatementNode::execute (this=0x862a0e0, 
    exec=0xafa07344)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:1896
#22 0xa5c55ed8 in KJS::SourceElementsNode::execute (this=0x8629ff8, 
    exec=0xafa07344)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:3097
#23 0xa5c54ae9 in KJS::BlockNode::execute (this=0x862a778, exec=0xafa07344)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:1942
#24 0xa5c54333 in KJS::IfNode::execute (this=0x862a7a8, exec=0xafa07344)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:2028
#25 0xa5c55ed8 in KJS::SourceElementsNode::execute (this=0x86293b8, 
    exec=0xafa07344)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:3097
#26 0xa5c54ae9 in KJS::BlockNode::execute (this=0x862a818, exec=0xafa07344)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:1942
#27 0xa5c54496 in KJS::DeclaredFunctionImp::execute (this=0x868b338, 
    exec=0xafa07344)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/function.cpp:588
#28 0xa5c3d3f4 in KJS::FunctionImp::call (this=0x868b338, exec=0xafa07734, 
    thisObj=@0xafa07420, args=@0xafa07414)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/function.cpp:363
#29 0xa5c4043e in KJS::Object::call (this=0xafa07428, exec=0xafa07734, 
    thisObj=@0xafa07420, args=@0xafa07414)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/object.cpp:73
#30 0xa5c48062 in KJS::FunctionCallNode::evaluate (this=0x865b108, 
    exec=0xafa07734)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:870
#31 0xa5c136f3 in KJS::AssignExprNode::evaluate (this=0x865b120, 
    exec=0xafa07734)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:1760
#32 0xa5c3d811 in KJS::VarDeclNode::evaluate (this=0x865b138, exec=0xafa07734)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:1791
#33 0xa5c3d6ef in KJS::VarDeclListNode::evaluate (this=0x865b158, 
    exec=0xafa07734)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:1863
#34 0xa5c54c00 in KJS::VarStatementNode::execute (this=0x865b170, 
    exec=0xafa07734)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:1896
#35 0xa5c55ed8 in KJS::SourceElementsNode::execute (this=0x849de68, 
    exec=0xafa07734)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:3097
#36 0xa5c54ae9 in KJS::BlockNode::execute (this=0x864f2f0, exec=0xafa07734)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:1942
#37 0xa5c54496 in KJS::DeclaredFunctionImp::execute (this=0x868f618, 
    exec=0xafa07734)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/function.cpp:588
#38 0xa5c3d3f4 in KJS::FunctionImp::call (this=0x868f618, exec=0xafa07ad8, 
    thisObj=@0xafa07810, args=@0xafa07804)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/function.cpp:363
#39 0xa5c4043e in KJS::Object::call (this=0xafa07818, exec=0xafa07ad8, 
    thisObj=@0xafa07810, args=@0xafa07804)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/object.cpp:73
#40 0xa5c48062 in KJS::FunctionCallNode::evaluate (this=0x86e67d8, 
    exec=0xafa07ad8)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:870
#41 0xa5c548be in KJS::ExprStatementNode::execute (this=0x8643800, 
    exec=0xafa07ad8)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:1980
#42 0xa5c55e38 in KJS::SourceElementsNode::execute (this=0x830b2e0, 
    exec=0xafa07ad8)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:3091
#43 0xa5c54ae9 in KJS::BlockNode::execute (this=0x86d17b8, exec=0xafa07ad8)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/nodes.cpp:1942
#44 0xa5c55a6a in KJS::InterpreterImp::evaluate (this=0x83898b0, 
    code=@0xafa07bc0, thisV=@0xafa07bc4)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/internal.cpp:904
#45 0xa5c55dca in KJS::Interpreter::evaluate (this=0x8371d78, 
    code=@0xafa07bc0, thisV=@0xafa07bc4)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kjs/interpreter.cpp:166
#46 0xa5f0bbf6 in KJS::KJSProxyImpl::evaluate (this=0x8456fd8, 
    filename=@0xafa07c8c, baseLine=1, str=@0xafa07d24, n=@0xafa07d1c, 
    completion=0xafa07c68)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./khtml/ecma/kjs_proxy.cpp:164
#47 0xa5d7f6ff in KHTMLPart::executeScript (this=0x85396e8, n=@0xafa07d1c, 
    script=@0xafa07d24)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./khtml/khtml_part.cpp:1198
#48 0xa5d7fb84 in KHTMLPart::slotChildURLRequest (this=0x85396e8, 
    url=@0xafa07e80, args=@0xafa07ea8)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./khtml/khtml_part.cpp:5093
#49 0xa5d93b21 in KHTMLPart::qt_invoke (this=0x85396e8, _id=59, _o=0xafa07e10)
    at ./khtml_part.moc:543
#50 0xa722cd4f in QObject::activate_signal (this=0x86a2088, clist=0x86bf310, 
    o=0xafa07e10) at kernel/qobject.cpp:2356
#51 0xa7ee6890 in KParts::BrowserExtension::openURLRequestDelayed (
    this=0x86a2088, t0=@0xafa07e80, t1=@0xafa07ea8)
    at ./browserextension.moc:330
#52 0xa7ef4bbe in KParts::BrowserExtension::slotEmitOpenURLRequestDelayed (
    this=0x86a2088)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kparts/browserextension.cpp:507
#53 0xa7ef4cb1 in KParts::BrowserExtension::qt_invoke (this=0x86a2088, _id=4, 
    _o=0xafa07f78) at ./browserextension.moc:627
#54 0xa722cd4f in QObject::activate_signal (this=0x82263c0, clist=0x86a8538, 
    o=0xafa07f78) at kernel/qobject.cpp:2356
#55 0xa75b5d8b in QSignal::signal (this=0x82263c0, t0=@0x82263e8)
    at .moc/debug-shared-mt/moc_qsignal.cpp:100
#56 0xa724c8d2 in QSignal::activate (this=0x82263c0) at kernel/qsignal.cpp:212
#57 0xa72542a4 in QSingleShotTimer::event (this=0x8226398)
    at kernel/qtimer.cpp:286
#58 0xa71c4c26 in QApplication::internalNotify (this=0xafa0863c, 
    receiver=0x8226398, e=0xafa082e8) at kernel/qapplication.cpp:2635
#59 0xa71c6a43 in QApplication::notify (this=0xafa0863c, receiver=0x8226398, 
    e=0xafa082e8) at kernel/qapplication.cpp:2358
#60 0xa78bae0e in KApplication::notify (this=0xafa0863c, receiver=0x8226398, 
    event=0xafa082e8)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kdecore/kapplication.cpp:550
#61 0xa7158421 in QApplication::sendEvent (receiver=0x8226398, 
    event=0xafa082e8) at ../include/qapplication.h:520
#62 0xa71b7623 in QEventLoop::activateTimers (this=0x80cc258)
    at kernel/qeventloop_unix.cpp:556
#63 0xa716c76f in QEventLoop::processEvents (this=0x80cc258, flags=4)
    at kernel/qeventloop_x11.cpp:389
#64 0xa71df179 in QEventLoop::enterLoop (this=0x80cc258)
    at kernel/qeventloop.cpp:198
#65 0xa71def9a in QEventLoop::exec (this=0x80cc258)
    at kernel/qeventloop.cpp:145
#66 0xa71c67bf in QApplication::exec (this=0xafa0863c)
    at kernel/qapplication.cpp:2758
#67 0xa660e495 in kdemain (argc=2, argv=0x8083d50)
    at /tmp/buildd/kdebase-3.5.5a.dfsg.1/./konqueror/konq_main.cc:206
#68 0xa7f21524 in kdeinitmain (argc=2, argv=0x8083d50) at konqueror_dummy.cc:3
#69 0x0804e457 in launch (argc=2, _name=0x807b2fc "konqueror", 
    args=0x807b30e "", cwd=0x0, envc=1, envs=0x807b31f "", reset_env=false, 
    tty=0x0, avoid_loops=false, 
    startup_id_str=0x807b324 "Debian2;1169130213;363383;5558_TIME899108767")
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kinit/kinit.cpp:673
#70 0x0804ecf9 in handle_launcher_request (sock=9)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kinit/kinit.cpp:1240
#71 0x0804f092 in handle_requests (waitForPid=0)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kinit/kinit.cpp:1443
#72 0x080502b1 in main (argc=5, argv=0xafa090f4, envp=0xafa0910c)
    at /home/ana/Debian/kdelibs/kdelibs-3.5.5a.dfsg.1/./kinit/kinit.cpp:1909
#73 0xa7c8eea8 in __libc_start_main () from /lib/tls/i686/cmov/libc.so.6
#74 0x0804b911 in _start () at ../sysdeps/i386/elf/start.S:119

Comment 1 Rex Dieter 2007-01-18 15:41:45 UTC

WORKSFORME (ok, only doesn't crash, I see flash saying "Loading player..." indefinitely).  Using kde-3.5.6/flash-plugin-9.0.31.0-release.

Comment 2 Maksim Orlovich 2007-01-18 19:25:36 UTC

Believed to be fixed for 3.5.6, based on the bt...

Comment 3 Raúl 2007-01-18 22:37:46 UTC

Thanks guys. Too coward to use 3.5.6, yet to be released, AFAIK.